Cisco Cisco Packet Data Interworking Function (PDIF) Prospecto
Crypto Map IKEv2-IPv4 Payload Configuration Mode Commands
rekey ▀
Cisco ASR 5x00 Command Line Interface Reference ▄
2743
rekey
Configures child security association rekeying.
Product
ePDG
FA
FNG
GGSN
HA
HNBGW
P-GW
PDSN
SAEGW
SCM
SGSN
Privilege
Security Administrator
Syntax
rekey [ keepalive ]
[ default | no ] rekey
default
Returns the feature to the default setting of disabled.
no
Disables this feature.
keepalive
If specified, a session will be rekeyed even if there has been no data exchanged since the last rekeying
operation. By default rekeying is only performed if there has been data exchanged since the previous rekey.
operation. By default rekeying is only performed if there has been data exchanged since the previous rekey.
Usage
Use this command to enable or disable the ability to rekey IPSec Child SAs after approximately 90% of the
Child SA lifetime has expired. The default, and recommended setting, is not to perform rekeying. No
rekeying means the P-GW will not originate rekeying operations and will not process CHILD SA rekeying
requests from the MS.
Child SA lifetime has expired. The default, and recommended setting, is not to perform rekeying. No
rekeying means the P-GW will not originate rekeying operations and will not process CHILD SA rekeying
requests from the MS.
Example
The following command disables rekeying:
no rekey